CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

40 matches found

Redos•added 2023/09/08 12:0 a.m.•34 views

ROS-20230907-04

Vulnerability of DHcheck, DHcheckex or EVPPKEYparamcheck functions of OpenSSL library is related to using a regular expression with inefficient computational complexity. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service. Vulnerability of DHcheck,...

5.3CVSS5.9AI score0.05533EPSS

Exploits0

OpenVAS•added 2023/08/04 12:0 a.m.•12 views

SUSE: Security Advisory (SUSE-SU-2023:3179-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.2AI score0.16195EPSS

Exploits0References6

Tenable Nessus•added 2023/08/02 12:0 a.m.•49 views

Slackware Linux 15.0 / current openssl Multiple Vulnerabilities (SSA:2023-213-01)

The version of openssl installed on the remote host is prior to 1.1.1v / 3.1.2. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-213-01 advisory. - Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications tha...

5.3CVSS6.5AI score0.05533EPSS

Exploits0References3

OSV•added 2023/08/01 10:48 a.m.•6 views

SUSE-SU-2023:3093-1 Security update for openssl-1_0_0

This update for openssl-100 fixes the following issues: - CVE-2023-3446: Fixed DHcheck excessive time with over sized modulus bsc1213487...

5.3CVSS5.8AI score0.05533EPSS

Exploits0References3

NVD•added 2023/07/31 4:15 p.m.•34 views

CVE-2023-3817

Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck, DHcheckex or EVPPKEYparamcheck to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been...

5.3CVSS6.1AI score0.02577EPSS

Exploits0References15

OSV•added 2023/07/31 4:15 p.m.•5 views

AZL-27817 CVE-2023-3817 affecting package rust for versions less than 1.68.2-5

5.3CVSS6.6AI score0.02577EPSS

Exploits0References1

OSV•added 2023/07/31 4:15 p.m.•5 views

AZL-34669 CVE-2023-3817 affecting package edk2 for versions less than 20230301gitf80f052277c8-37

5.3CVSS6.6AI score0.02577EPSS

Exploits0References1

CVE•added 2023/07/31 3:34 p.m.•1309 views

CVE-2023-3817

CVE-2023-3817 concerns OpenSSL: excessive time spent in checks of DH keys/parameters via DH_check(), DH_check_ex(), and EVP_PKEY_param_check(). If key/parameters originate from untrusted sources, an attacker could cause a Denial of Service by triggering long computations. The issue also affects r...

5.3CVSS6.2AI score0.02577EPSS

Exploits0References15Affected Software1

Debian CVE•added 2023/07/31 3:34 p.m.•42 views

CVE-2023-3817

5.3CVSS7AI score0.02577EPSS

Exploits0

Tenable Nessus•added 2023/07/31 12:0 a.m.•46 views

FreeBSD : OpenSSL -- Excessive time spent checking DH q parameter value (bad6588e-2fe0-11ee-a0d1-84a93843eb75)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the bad6588e-2fe0-11ee-a0d1-84a93843eb75 advisory. - Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary:...

5.3CVSS6.5AI score0.05533EPSS

Exploits0References3

OSV•added 2023/07/28 12:18 p.m.•8 views

SUSE-SU-2023:3013-1 Security update for openssl-3

This update for openssl-3 fixes the following issues: - CVE-2023-2975: Fixed AES-SIV implementation ignores empty associated data entries bsc1213383. - CVE-2023-3446: Fixed DHcheck excessive time with over sized modulus bsc1213487...

5.3CVSS5.8AI score0.05533EPSS

Exploits0References5

OSV•added 2023/07/28 12:17 p.m.•6 views

SUSE-SU-2023:3012-1 Security update for openssl-1_0_0

This update for openssl-100 fixes the following issues: - CVE-2023-3446: Fixed DHcheck excessive time with over sized modulus bsc1213487...

5.3CVSS5.8AI score0.05533EPSS

Exploits0References3

OSV•added 2023/07/28 12:17 p.m.•8 views

SUSE-SU-2023:3011-1 Security update for openssl-3

5.3CVSS5.8AI score0.05533EPSS

Exploits0References5

OSV•added 2023/07/26 7:30 a.m.•6 views

SUSE-SU-2023:2973-1 Security update for openssl

This update for openssl fixes the following issues: - CVE-2023-3446: Fixed DHcheck excessive time with over sized modulus bsc1213487...

5.3CVSS5.8AI score0.05533EPSS

Exploits0References3

Tenable Nessus•added 2023/07/26 12:0 a.m.•31 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : openssl-1_1 (SUSE-SU-2023:2962-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2962-1 advisory. - Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary:...

5.3CVSS6.4AI score0.05533EPSS

Exploits0References4

Tenable Nessus•added 2023/07/26 12:0 a.m.•41 views

SUSE SLES12 Security Update : openssl-1_1 (SUSE-SU-2023:2964-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2964-1 advisory. - Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions...

5.3CVSS6.4AI score0.05533EPSS

Exploits0References4

OSV•added 2023/07/25 10:29 a.m.•3 views

SUSE-SU-2023:2964-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2023-3446: Fixed DHcheck excessive time with over sized modulus bsc1213487...

5.3CVSS5.8AI score0.05533EPSS

Exploits0References3

NVD•added 2023/07/19 12:15 p.m.•23 views

CVE-2023-3446

5.3CVSS6.8AI score0.05533EPSS

Exploits0References13

OSV•added 2023/07/19 12:15 p.m.•1 views